FREE TOOLS / SECRET SCANNER

Secret Scanner

Audit your configuration files, scripts, or text paragraphs locally for leaked credentials such as API keys, private keys, or passwords.

Text or Config to Scan (Max 20,000 characters)

Detected Potential Secrets

Line	Type (Pattern)	Value (Masked)
Results will appear here after you run the scan.

Critical Security Warning:

Avoid pasting live access tokens, API keys, private keys, passwords or real production secrets. Even though the tool runs locally, using sample or masked data is safer.

This tool helps identify possible secrets in text locally. False positives or missed findings may occur; results are not a security guarantee.

What Patterns Are Scanned?

This scanner runs regex logic over your text to find common secret formats:

Private Key blocks (PEM, RSA)
AWS Access Key IDs
GitHub PAT / OAuth token signatures
Slack bot/user token formats
JWT bearer token configurations
Assignment patterns (e.g., password=, token=, apikey=)